Singapore bike-sharing service provider oBike had its user data leaked online in a global security breach which lasted at least 2 weeks.
A recent report by Bavarian news agency BR24 said user data such as names, mobile phone numbers, email addresses, profile pictures and cycling routes could be accessed online.
The data came from users from Germany, Singapore, Malaysia, Switzerland and Great Britain.
An oBike spokesperson said it was “made aware of the issue and worked quickly to resolve it immediately”.
The issue “stemmed from a gap in our API (application programming interface) that allowed users to refer a friend to our platform”.
The spokesperson also said:
“This only affected a small handful of our users. The personal data that was exposed was limited to user names, email addresses and mobile numbers. The app does not store credit card details or passwords of users”
If you’d like to contribute your story to us, drop us an email at editors@sureboh.sg and we’ll review it. We read each submission that comes to us within two weeks of receiving it.
